More details about the impacts of the cyberattack hitting MGM Resorts have been disclosed.
The high-severity flaw (CVE-2023-4911), which was introduced in glibc version 2.34, exists in glibc’s dynamic loader.
Researchers have discovered clues that may indicate that the Qakbot threat actors are still active.
Alessio Setaro, CISO of Leroy Merlin Italy, joins Dennis Fisher to talk about his path to becoming a CISO, the challenges of breaking down silos in an organization, and why security is a people-first challenge.
Researchers have identified seven serious flaws in the BMC firmware on many Supermicro motherboards that can lead to complete compromise of vulnerable servers.
Atlassian has released fixes for a zero day in its popular Confluence Server and Data Center products.
Exploitation has been observed in the wild for a critical flaw in the file transfer server from the MOVEit Transfer maker.
The average time that it takes threat actors to exploit vulnerabilities - either prior to or after their public disclosure - is going down.
Threat actors have deployed two different ransomware variants against victims, including AvosLocker, Diamond, Hive, Karakurt, LockBit, Quantum and Roya.
Progress Software has fixed a critical pre-authentication remote code execution bug in its WS_FTP Server product.
Welcome back to Source Code, Decipher's weekly news wrap podcast with input from our sources.
The flaw is the second Chrome zero day fixed by Google this month.
The full impact of the flaw is still being mapped out, but current estimates show that 2,120 organizations have been impacted by MoveIT Transfer exploits - resulting in the data of at least 62 million individuals being compromised.
U.S. authorities warn that cooperative efforts between state-sponsored actors and cybercrime groups make life more difficult for defenders and law enforcement.
Software development company JetBrains is urging customers to apply updates that fix a critical-severity authentication bypass flaw in the TeamCity CI/CD server.